Skills
skills/mdhb2/aix-skillpack/web-design-reviewer/Gen Agent Trust Hub

web-design-reviewer

Pass

Audited by Gen Agent Trust Hub on May 16, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADS
Full Analysis
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it retrieves and processes content from external websites.
  • Ingestion points: External data is ingested via browser_navigate and browser_snapshot as described in SKILL.md.
  • Boundary markers: The instructions do not define specific boundary markers or 'ignore' instructions for the data retrieved from websites.
  • Capability inventory: The skill has File Read/Write and Code Search capabilities used to apply CSS/JS fixes to the local project files.
  • Sanitization: There is no mention of sanitizing or escaping the DOM content or text retrieved from the target URLs before processing.
  • [EXTERNAL_DOWNLOADS]: The skill documentation recommends using the Playwright MCP server, which involves downloading the @playwright/mcp package from the official NPM registry via npx.
Audit Metadata
Risk Level
SAFE
Analyzed
May 16, 2026, 01:22 AM
Security Audit — agent-trust-hub — web-design-reviewer